sap-customer-ebook-ebook-27076

On the following pages, read how the following six organizations are improving and simplifying IAM for their IT environments that include SAP: Union Investment One Identity Manager and

Trang 1

SAP Customer Stories eBook

See how six organizations simplify IAM for SAP and other platforms with

a certified solution from One Identity

www.oneidentity.com

EBOOK

Trang 2

Today, employees expect

to get access to the information they need

to do their jobs from anywhere and at any time, regardless of the target system or application.

However, this kind of seamless access requires the universal implementation of an identity and access management (IAM) solution across an organization’s

IT infrastructures and software platforms—which can

be significantly challenging In addition to having to speed onboarding and deprovisioning, IT departments must also standardize roles and maintain compliance with corporate and government-imposed security and privacy regulations

Implementation of an effective IAM solution becomes even more complicated when business-critical

platforms like SAP are involved That’s because SAP has its own security and access governance requirements, and it’s typically managed by a dedicated team that’s separate from the one responsible for the corporate IAM program

Why struggle with IAM, especially when it comes to SAP? One Identity Manager is a comprehensive IAM solution that’s certified by SAP to work seamlessly with the growing portfolio of SAP modules With Identity Manager, you can dramatically simplify and improve user lifecycle management, governance and authentication for all your SAP implementations across production, test, development and even sandbox

environments And because Identity Manager also interoperates with cross-platform applications and hybrid architectures, you can use it as your central IAM solution to protect all your systems and data.

Trang 3

With One Identity,

you can:

Use one console

to manage SAP

accounts across

enterprise systems.

Deliver SAP-specialized

workflows and

business logic within

enterprise governance.

Bring all IT resources under governance by associating an SAP account with standard user corporate identities.

Accelerate deployments and reduce complexity

by integrating your IAM environment with SAP cloud applications using One Identity Starling Connect instead of complex interfaces.

Scale your IAM environment to include hundreds of millions of

SAP objects

Replace manual workflows for provisioning and other basic tasks with standardized and automated processes.

Verify and enforce SAP-optimized segregation of duties.

Facilitate single sign-on.

On the following pages, read how the following six organizations

are improving and simplifying IAM for their IT environments that include SAP:

Union Investment

One Identity Manager and One Identity Starling Connect

4 5 6

Jemena

Wayne State University

One Identity Manager and One Identity Starling Connect 7

8

9 BHF-Bank

Franke

Swiss National Accident Insurance Fund (SUVA)

One Identity Manager, One Identity Starling Connect and One Identity Services

3

Table of Contents

Back to Index

Trang 4

“We chose One Identity Manager because

it is flexible You can customize your

own connectors, and it delivers standard

connectors to different systems like SAP.”

Dieter Fromm, Project Manager for

Infrastructure Projects, Union Investment

Today, Union Investment …

increases control and insight over who has access to data about €257 billion in assets stored in systems including SAP The company also simplifies regulatory compliance, cuts risk and speeds provisioning from up to four days to just one because it takes

one minute to set up a new user profile Union Investment achieves this by:

Customer Profile

Company: Union Investment

Industry: Finance & Insurance

Country: Germany

Employees: 2,700

Solution: One Identity Manager

and One Identity Starling Connect

Partner: iC Consult

Investing wisely in identity management

Union Investment provides same-day system access and meets tougher auditing standards with a single identity management solution

Giving the right people the right access

• Administrators create user profiles for SAP and other systems based on 360 standardized roles

• People are granted access only to the systems and data they need to complete their work

Enforcing the right level of control

• Administrators can see who has access to what data

• Digital audit trails detail users’

lifecycles of system access for

at least 10 years

Using the right processes

• The provisioning and deprovisioning of 10,000 Active Directory accounts are now automated processes instead of manual

• Administrators manage access to 70 systems based

on standard user profiles and employee roles

• Compliance with national and GDPR requirements is easier

Read the full Union Investment case study here.

Trang 5

“Identity Manager would talk to each system

[including SAP] in whatever schema the

system understood …Not only can we ensure

that we’re compliant with Identity Manager,

we can also demonstrate that compliance.”

Phil Duncanson, General Manager, IT

Application Management, Jemena

Today, Jemena …

boosts security, increases efficiency and reduces risk associated with managing access to SAP ERP, Active Directory and 18 other business applications used

by 2,000 permanent staff as well as 1,500 temporary employees whose roles

frequently change Jemena achieves this by:

Company: Jemena

Industry: Utility

Country: Australia

Enhancing auditing and compliance automatically

Jemena in Australia mitigates access management risks with automated attestation processes

• Stakeholders across the organization teamed up to establish standardized roles in SAP modules and four other systems, along with standardized Active Directory group memberships

• To ensure only authorized individuals have access to resources, the team also created 20 standard attestation policies across eight target systems including SAP

• IT staff can quickly see who has access to what data from

“one version of the truth.”

• Jemena is using its identity and access management policies and roles as a foundation for wider corporate security solutions

• Jemena replaced manual provisioning, deprovisioning and attestation workflows with automated processes

• Having IT and business stakeholders collaborate on standardizing access improves overall outcomes

Read the full Jemena case study here.

Trang 6

“Account issues have gone way down

because we’re automatically handling all the

data coming from our ERP system …We can

move a whole lot faster than we used to.”

Eric Dau, Lead Applications Technical Analyst,

Wayne State University

Today, Wayne State University…

has the IAM solution it needs to improve security, data protection and service levels In addition to increasing IT uptime, boosting staff efficiency and decreasing complexity, the university can now easily scale its offerings to support growth and

change Wayne State University achieves this by:

Company: Wayne State University

Industry: Higher Education

Country: United States

Students: 27,000

Partner: Immersion Technologies

Simplifying and improving data protection and access

Wayne State University increases efficiency and security by streamlining IAM workflows with Identity Manager

• Students, staff and faculty gain quick access to the digital resources they require, whether that’s financial, health, credit card, class, student or research data

• Users’ access is based on their assigned business roles and user groups—and data in the university’s SAP ERP system

• Standardized IAM workflows ensure compliance with HIPAA, FERPA, GLBA and SOX regulations

• Instead of writing code to manage needed changes in IAM—such as adding connections between applications—IT staff use prebuilt connectors and a point-and-click interface

• Automated provisioning and deprovisioning workflows make required changes to the university’s Active Directory, so these processes are no longer manual

• Because the new IAM solution is less complex and easy to scale, the university has simplified growth

Trang 7

“Identity Manager was the right choice

I particularly liked the availability of

an SAP standard connector that would

enable integration of our SAP modules.”

Sebastian Goodrick, Head of Identity

and Access Management, Swiss National

Accident Insurance Fund (Suva)

Today, Suva …

has a future-proof IAM solution that improves security and IT staff efficiency

Suva is also lowering operating costs and projecting a complete return on

investment within four years Suva achieves this by:

Company: Swiss National

Accident Insurance Fund (Suva)

Industry: Insurance

Country: Switzerland

Solution: One Identity Manager,

One Identity Starling Connect and

One Identity Services

Delivering more than just protection against accidents

Swiss National Accident Insurance Fund takes the pain out of access management

• Seven hundred business roles, each with predefined access privileges, now provide a standardized framework for IAM

• Employees’ application access is based on the roles they are assigned to

• Employees’ application and data access privileges are automatically provisioned and deprovisioned when changes are made in SAP

• Security is improved because today one IT team—instead of many—controls IAM

• Suva replaced siloed IAM processes with seamless, standardized workflows facilitated by one comprehensive solution

• IT staff can now use their standard IT development platform—Microsoft NET—to customize Identity Manager as needed

Trang 8

“We now have complete control of

nearly 100 percent of our user accounts

of the onboarded target systems.”

Aristeidis Matsokis,

Business Process Specialist, Franke

Today, Franke …

has improved IT security, cost savings and efficiency with its IAM solution Provisioning and deprovisioning access to global on-premises and cloud-based systems take just 30 minutes

of effort And domain name changes involving SAP, Active Directory and other global systems

take just minutes instead of weeks or months Franke achieves this by:

Company: Franke Holding AG

Industry: Manufacturing

Country: Switzerland

Partner: Devoteam

Franke gains control of identity management

Global manufacturer turns challenging environment into an efficient global management system

Gives the right people the right access

• Provisioning and deprovisioning are automated based on standard roles and a consolidated view of employee and user data from disparate identity and

HR systems

• Orphaned accounts were identified and eliminated

Enforces the right level of control

• For all employees across 66 subsidiaries, 40 countries and five continents, managers can quickly see who has access to what, along with who granted the access, when and why

Uses the right processes

• Users access resources via single sign-on, and they reset passwords from a self-service portal

• Managers can facilitate access changes for specific resources and individuals using a self-service portal

• Employees and contractors can verify the appropriateness of their access privileges using a self-service portal

• IT staff can scale Identity Manager to interoperate with any target system regardless of the API interface

Trang 9

“We can provision users or systems up to

40 percent faster with Identity Manager

thanks to its out-of-the-box functionalities.”

Frank Riewe, Head of Ecommerce and Web

Development, BHF-BANK

Today, BHF-BANK …

has the IAM solution it needed to improve IT security and governance over its disparate systems that include SAP and significant numbers of proprietary applications The company is also saving 20 hours each week in IAM

management effort BHF-BANK achieves this by:

Company: BHF-BANK

Industry: Banking and Finance

Country: Germany

German bank overcomes barriers to access management

BHF-BANK achieves 40 percent faster approval times for systems access and cuts administration time on identity management by 20 hours a week

Gives the right people the right access

• Thousands of internal and external users access digital resources based on standardized user profiles and roles

Enforces the right level of control

• BHF-BANK now has a centralized IAM solution for

30 platforms including SAP systems, IBM mainframes and Oracle

• Users visit a self-service “IT shop” to submit their own access requests—a process that takes about 30 seconds

Uses the right processes

• Automated processes accelerate provisioning by 40 percent

• Instead of manually creating custom user profiles for contractors in every system they need access to, IT staff use a standard temporary employee template

Trang 10

#GetIAMRight

Industry experts recommend One Identity solutions for IAM

Leader

Gartner February

2018 Magic Quadrant for Identity Governance and

Administration

Challenger

in the Gartner Magic Quadrant for User Administration and Provisioning

Readers’

Choice

Award winner for Governance, Risk and Compliance

“Information Security magazine”

Comprehensive

leader

and product leader

in the KuppingerCole Leadership Compass for Access Management and Federation

Recommended

SAP-certified IAM solutions

Trang 11

oneidentity.com

countries For a complete list of One Identity trademarks, please visit our website at www.oneidentity.com/legal

All other trademarks, servicemarks, registered trademarks, and registered servicemarks are the property of their respective owners

Định dạng
Số trang	11
Dung lượng	2,38 MB